Richard Henderson, The Global Security Strategist for Absolute, and I spoke about the global Ransomware threat, its prevention, and what to do if you’re victimized by an attack. Richard and I disagree a bit on what you should do if you’re a Ransomware victim. I say that you should never pay. He says that there are circumstances where it makes more sense to pay the ransom.
I write the introductory column for ADMIN magazine and in the most recent issue (Number 40), I wrote about this very topic. I titled it, “Feeding Seagulls is Wrong.” It is a light-hearted look at feeding seagulls, which I compare to ransomware writers. To me, paying ransomware writers is like feeding seagulls: You’re down a bag of Cheetos (Some amount of Bitcoin) and the seagulls (Ransomware writers) are never satisfied.
Listen to the podcast. Read my column. Make a decision. And feel free to tweet me @kenhess to start a discussion.
Length: 24:11 minutes. Format: MP3. Rating: G for all audiences.
Copyright 2017 The SecurityNOW Podcast Show. CC BY.
In Preston’s absence, I spoke with ThinAir CEO Tony Gauda about insider threats. Insider threats cost companies billions of dollars, thousands of lost labor hours, and loss of credibility with customers. If you don’t believe that insider threats are a real problem, it might interest you to know that among companies experiencing data breaches, internal actors were responsible for 43 percent of data loss, half of which was intentional and half accidental.
There are two types of insider threats that are mentioned above:
The malicious insider who purposely steals data, and
The unaware or innocent insider who accidentally causes a breach.
From the ThinAir website:
The average cost of a data breach is now $3.62 million, up 16% since 2013, according to a recent IBM-Ponemon report. It only takes minutes for a thief to steal information, but organizations typically need 191 days to identify a breach and another 66 days to contain it. The two major costs are related to an investigation, and the forensics to determine the root cause and the scope. Factor in the inevitable lawsuits, customer churn, and brand damage, and an organization will feel the effects of a breach for years to come.
What if instead of attempting to reconstruct the crime scene, you could play back the security tape in high definition? What if you knew the source, complete impact, and vector of exfiltration in 90 seconds?
The problem is real and it’s expensive. Tony Gauda and I explore the many possibilities and some solutions to the problem in this podcast.
Length: 20:39 mins. Format: MP3. Rating: G for all audiences.
Thanks to Tony Gauda and Caitlin Gribbons at Inkhouse for connecting us.
Greetings SSH fans. Preston and I had the pleasure of speaking with SSH Communications Security founder Tatu Ylönen about keyless access and how system administrators and system security professionals should “manage access, not keys” when using the SSH protocol.
Preston and I debate the security of a decision to use passwordless and keyless access. During the call, we asked how to implement keyless access and what the deployment looks like to a system administrator. Preston and I are both system administrators, so we are definitely interested in the ins-and-outs of deployment.
As always, Tatu is very engaging and extremely knowledgeable about the topic of security, SSH, and access management.
Length: 15:52 minutes. Format: MP3. Rating: G for all audiences.
I’ve never been to a Black Hat Conference but I’d love to go. Richard Henderson, Global Security Strategist for Absolute and regular SecurityNOW podcast guest, is going. Before he left, he shared some ideas and trends for this year’s conference in fabulous Las Vegas.
Richard and I discuss a lot of different things in this episode but our main focus is Black Hat 2017 and what he thinks the trends are going to be.
I think this was a fun one. Unfortunately, Preston was not able to join us, but we had a good time anyway. Richard is always a great guest and I think you’ll enjoy hearing a longer, calmer podcast than usual.
Length: 36:22 minutes. Format: MP3. Rating: G for all audiences.
Preston and I had the opportunity to speak with Proofpoint‘s Vice President of Digital Risk on the hot topic of social media security. I say it’s a hot topic because it’s a hot topic for me because I’m not really a fan of most social media sites. I generally only use LinkedIn and Twitter. But there’s more to social media than Facebook, Twitter, and LinkedIn. There’s Instagram, Snapchat, and others. And security for all them is a big concern–or should be. In this podcast, we discuss the problems with social media security and some possible solutions.
Listen in and tell us what you think.
Length: 19:59 minutes. Format: MP3. Rating: G for all audiences.
Preston and I took a few minutes to recap the year so far in cybersecurity and to catch you up on what’s going on with breaches, security tips, and ransomware. We have a lengthy (for us) conversation that covers all things cybersecurity for the first half of 2017 and all that it had to offer. I want you to pay particular attention to my five rules concerning ransomware. Please take this advice as wisdom from not only Preston and myself but from other cybersecurity professionals as well.
Length: 33:56 minutes. Format: MP3. Rating: G for all audiences.
Preston and I interviewed Ryan Benson, Senior Threat Researcher at Exabeam about Security Information and Event Management (SIEM) software. We discussed what SIEM software is, what it does for a company, how it protects your network, and how to evaluate a SIEM suite.
Preston and I also agree that a SIEM suite should offer more than simple log aggregation and log scraping. There are less expensive and less cumbersome tools that can handle that functionality if that’s all you need. We also agree that SIEM companies need to bake some intelligence into their products that allow them to be automated, to respond automatically to threats, and to include advanced analytics so that you can optionally find out what’s going on and going wrong on your network.
Ryan gives us some insight into what’s going on in SIEM software and why you should care. Before you purchase a SIEM solution, take his advice offered in the podcast.
Length: 22:35 minutes. Format: MP3. Rating: G for all audiences.